MohamedTahaCyber Security Division Manager at 3SC Security Solutions Services and Consultant
Anonymous UserIT Consultant Supervisor at a financial services firm
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"The most valuable features are support and security."
"The GUI is user-friendly and it's easy to understand how to manage it."
"I have recently been looking at the SSL certificate features and the learning mode of the appliance. This appliance learns from the pattern of SSL attacks."
"The GUI is user-friendly."
"This product is very user-friendly."
"It is easy to install and to maintain."
"It's stable and works efficiently against OWASP Top 10 attacks."
"It is a stable product."
"Technical support is fantastic."
"The most valuable features are vulnerability detection and the scanning capability to enable identification of vulnerabilities across our network."
"What I like about Qualys VM is the dashboard presentation. It's very good."
"It's a good product. After the scan our internet works well. It scans our security posture."
"It is very easy to use and there are lots of options. We can usually easily go through it and all of the things we want to configure, and we can configure everything to our specifications very easily."
"The initial setup was good. We didn't have any problems with it."
"Technical support is great and we've never really had a problem."
"The features that are most valuable are the identification, scan features, and the identification of vulnerabilities."
"I would like to see more improvements with respect to threat intelligence."
"Describing security rules should be improved. It's tricky to define new feature tools when you want to describe an attack pattern and want to block it."
"We would like the interface to be easier to use and more user-friendly. The interface needs to be enhanced."
"The integration with other products should be improved."
"FortiWeb needs to have support for the newest technology being used in web applications."
"In terms of performance, it needs to be more robust."
"The Layer 7 DDoS attacks need improvement, it could be better."
"Fortinet WAF came out recently, and there is not much feedback about customer experience. For each project, customers ask about the scenarios and references of the customers who have implemented this solution, which we don't have. They need to simplify the customer experience and provide more information so that we can propose Fortinet Fortiweb as a WAF solution to customers and convince them. They need to improve their service and training. We need good training to implement and use it properly and know more about it. We still don't know much about Fortinet WAF. We didn't get any proper training sessions. Other vendors like Cisco, Palo Alto, Check Point, and Barracuda provide such sessions. Whenever we receive a request from a customer for this solution, we just give the price. We don't propose this solution because we don't know much about it. We propose whatever we are familiar with and what is supported."
"It's quite complex on the way it is set up, so it takes a fair bit of time in order to get your head around it in order to deploy it. Once you've deployed it, then you're never confident on the versions of the browsers and the SSL certificates, etc. You have to always go back into Qualys and check."
"I would like to see this solution more developed and competitive in the Cloud space."
"The customer support is very bad."
"The reporting needs improvement. It should generate much more stuff like field reports."
"Sometimes we face a problem with accessing the tool and not getting an expected result. From a technology point of view, they need to look into this."
"The ability to manage user accounts and give rights to the operator to know about abnormalities of applications is something that needs improvement."
"We are moving away from Qualys to Defender ATP because I find that Defender ATP is much better at prioritizing the vulnerabilities that I should be looking at."
"I would like to see more accuracy in detections, better reporting capabilities, and better dashboard download capabilities."
"The costs are standard. We pay around $1,600 yearly."
"All our Fortinet pricing is bundled together for different products, like FortiGate, FortiAnalyzer, and FortiWeb. FortiWeb, by itself, is probably around $2,500 to $3,500."
"FortiWeb is more expensive than some competing products."
"Due to the situation in Iran with the sanctions, the price of this solution is very expensive."
"It's an expensive solution, although there are no additional costs."
"It is fine now. We had to earlier negotiate the price."
"It is an expensive suite and it is an expensive solution, but it is a manageable one for an enterprise."
"Its subscription prices are cheaper, and it is not very expensive. From a price perspective, Fortinet is a very well-known security vendor. Subscriptions are very simple. They have a couple of licenses on an appliance, and that's it. The cost is not that big. One license is 40K, which they give with all the products. Another one includes the subscriptions for threat prevention, IPS, sandboxing, etc, which is more than enough."
"They have recently changed the pricing model, which is now better than it was before."
"It is different for every company, but for us, it's every three years."
"Qualys is cheaper and more affordable than other solutions."
"The pricing and licensing for Qualys could be improved."
FortiWeb is a web application firewall (WAF) that protects hosted web applications from attacks that target known and unknown exploits. Using multi-layered and correlated detection methods, FortiWeb defends applications from known vulnerabilities and from zero-day threats.
Qualys Vulnerability Management (VM) is a cloud-based service that gives you immediate, global visibility into where your IT systems might be vulnerable to the latest Internet threats and how to protect them. It helps you to continuously identify threats and monitor unexpected changes in your network before they turn into breaches.
Fortinet FortiWeb is ranked 1st in Web Application Firewall (WAF) with 18 reviews while Qualys VM is ranked 4th in Vulnerability Management with 13 reviews. Fortinet FortiWeb is rated 8.2, while Qualys VM is rated 8.4. The top reviewer of Fortinet FortiWeb writes "This flexible suite solves compliance problems but that comes at a cost". On the other hand, the top reviewer of Qualys VM writes "Easy to use and scalable but needs to be priced more competitively". Fortinet FortiWeb is most compared with Fortinet FortiADC, F5 BIG-IP Local Traffic Manager (LTM), Fortinet FortiOS, F5 Advanced WAF and Microsoft Azure Application Gateway, whereas Qualys VM is most compared with Tenable Nessus, Tenable SC, Rapid7 InsightVM, Darktrace and Microsoft Cloud App Security.
See our list of .
We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.